Bitcoin Forum
March 02, 2021, 11:14:56 AM *
News: Latest Bitcoin Core release: 0.21.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 [2] 3 »  All
  Print  
Author Topic: Bitcoin source from November 2008.  (Read 14297 times)
marcus_of_augustus
Legendary
*
Offline Offline

Activity: 3472
Merit: 1637



View Profile
December 23, 2013, 09:51:43 PM
 #21

Ok, this is interesting.

So can we get the actual files posted somewhere?

Edit: ooops just saw that been posted ...

1614683696
Hero Member
*
Offline Offline

Posts: 1614683696

View Profile Personal Message (Offline)

Ignore
1614683696
Reply with quote  #2

1614683696
Report to moderator
1614683696
Hero Member
*
Offline Offline

Posts: 1614683696

View Profile Personal Message (Offline)

Ignore
1614683696
Reply with quote  #2

1614683696
Report to moderator
1614683696
Hero Member
*
Offline Offline

Posts: 1614683696

View Profile Personal Message (Offline)

Ignore
1614683696
Reply with quote  #2

1614683696
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1614683696
Hero Member
*
Offline Offline

Posts: 1614683696

View Profile Personal Message (Offline)

Ignore
1614683696
Reply with quote  #2

1614683696
Report to moderator
1614683696
Hero Member
*
Offline Offline

Posts: 1614683696

View Profile Personal Message (Offline)

Ignore
1614683696
Reply with quote  #2

1614683696
Report to moderator
deepceleron
Legendary
*
Offline Offline

Activity: 1512
Merit: 1001



View Profile WWW
December 23, 2013, 09:53:03 PM
 #22

Ok, this is interesting.

So can we get the actual files posted somewhere?
Three posts back?
Cryddit
Legendary
*
Offline Offline

Activity: 924
Merit: 1057


View Profile
December 23, 2013, 10:39:15 PM
 #23

What's strange about that? It's simple: that address hadn't been used, until someone sent a thousand satoshis to it a few months ago.

Yeah, someone's been sending 'dust' to old addresses all along the blockchain.  If I understand it correctly, it's an attempt to link the owners of those accounts to purchases being made today. 

The automatic coin selection in the client picks up the extra txOut and may spend it along with other txOuts next time you buy some alpaca socks.   And then somebody somewhere knows that the same person who owns that older txout is the person who bought those alpaca socks.

This is when they can't figure it out just by looking at the transaction history, of course.  But that little bit of dust is someone trying to figure out who owns the account.

Sergio_Demian_Lerner
Hero Member
*****
expert
Offline Offline

Activity: 549
Merit: 548


View Profile WWW
December 23, 2013, 11:44:15 PM
 #24

I also have these files, sent to me by one of the early reviewers of the code.
Another interesting fact (I talked in laBitConf) is the fact that there was already a genesis block in it, which was obviously discarded after testing was done.

Still other interesting facts are these comments in main.h

 ///static const unsigned int MINPROOFOFWORK = 40; /// need to decide the right difficulty to start with
static const unsigned int MINPROOFOFWORK = 20;  /// ridiculously easy for testing


So Satoshi may had the capability of 2^40 hashes per 10 minute interval (but he finally fixed it at 32).

These were the latest changes during that period:
 
* Two more decimal digits for BTC denomination
* Added nSequence to TxOut
* Added nVersion to Block
* Changed nBits from zero bit count to compact target format.

Regards, Sergio.
jdbtracker
Hero Member
*****
Offline Offline

Activity: 727
Merit: 500


Minimum Effort/Maximum effect


View Profile
December 25, 2013, 07:33:00 PM
 #25

Wow, thank you so much, it is mind blowing to see this, I'm reading all the code now.

If you think my efforts are worth something; I'll keep on keeping on.
I don't believe in IQ, only in Determination.
Altoidnerd
Sr. Member
****
Offline Offline

Activity: 406
Merit: 250


http://altoidnerd.com


View Profile WWW
December 28, 2013, 10:07:06 AM
 #26

Got a decent question who the hell is S.N. Have we figured that one out yet?

Do you even mine?
http://altoidnerd.com 
12gKRdrz7yy7erg5apUvSRGemypTUvBRuJ
Cryddit
Legendary
*
Offline Offline

Activity: 924
Merit: 1057


View Profile
December 28, 2013, 04:21:14 PM
 #27

Got a decent question who the hell is S.N. Have we figured that one out yet?

I may have figured it out.  At least I know someone who had the motivation, skills, and time to have made it, had no need for all the money Satoshi hasn't spent, and who also had a good reason to withdraw from the community when Satoshi did.  But there's no proof, and I'm not motivated to share my speculations.

mmeijeri
Hero Member
*****
Offline Offline

Activity: 714
Merit: 500

Martijn Meijering


View Profile
December 28, 2013, 04:32:08 PM
 #28

I may have figured it out.  At least I know someone who had the motivation, skills, and time to have made it, had no need for all the money Satoshi hasn't spent, and who also had a good reason to withdraw from the community when Satoshi did.  But there's no proof, and I'm not motivated to share my speculations.

Here's a fun game we can play: could you use something like virtual-notary.org or proofofexistence.com to upload a hash of a (properly padded) string containing the name of the individual? If the name ever leaks out, we can see if your guess was correct.

ROI is not a verb, the term you're looking for is 'to break even'.
Altoidnerd
Sr. Member
****
Offline Offline

Activity: 406
Merit: 250


http://altoidnerd.com


View Profile WWW
December 28, 2013, 07:36:37 PM
 #29

I may have figured it out.  At least I know someone who had the motivation, skills, and time to have made it, had no need for all the money Satoshi hasn't spent, and who also had a good reason to withdraw from the community when Satoshi did.  But there's no proof, and I'm not motivated to share my speculations.

Here's a fun game we can play: could you use something like virtual-notary.org or proofofexistence.com to upload a hash of a (properly padded) string containing the name of the individual? If the name ever leaks out, we can see if your guess was correct.

Extremely nerdy, very cool idea. 

Do you even mine?
http://altoidnerd.com 
12gKRdrz7yy7erg5apUvSRGemypTUvBRuJ
Voodah
Sr. Member
****
Offline Offline

Activity: 266
Merit: 250



View Profile
December 28, 2013, 11:50:17 PM
 #30

Nice find. Thanks for this.
mmeijeri
Hero Member
*****
Offline Offline

Activity: 714
Merit: 500

Martijn Meijering


View Profile
January 22, 2014, 11:07:36 AM
 #31

A pity that script, VerifySignature and SignSignature aren't included. It might have shed some light on why OP_CHECKSIG works the way it does.

ROI is not a verb, the term you're looking for is 'to break even'.
jl2012
Legendary
*
Offline Offline

Activity: 1792
Merit: 1010


View Profile
January 22, 2014, 01:40:24 PM
 #32


One interesting note is that the genesis block in this code has a different hash. 


Isn't this expected? Unless Satoshi was a prophet, he shouldn't know "The Times 03/Jan/2009 Chancellor on brink of second bailout for banks" in November 2008

Donation address: 374iXxS4BuqFHsEwwxUuH3nvJ69Y7Hqur3 (Bitcoin ONLY)
LRDGENPLYrcTRssGoZrsCT1hngaH3BVkM4 (LTC)
PGP: D3CC 1772 8600 5BB8 FF67 3294 C524 2A1A B393 6517
Mike Hearn
Legendary
*
expert
Offline Offline

Activity: 1526
Merit: 1013


View Profile
January 22, 2014, 03:02:33 PM
 #33

I strongly suspect that in November 2008 there was no script. It always felt like a last minute addition to me. It's not mentioned in the white paper at all and everything we know about it was reverse engineered out of the source. And as noted the design is a bit screwy - CHECKSIG feels like something that was refactored out of a pre-existing code base rather than something you'd actually sit down and design on paper.
mmeijeri
Hero Member
*****
Offline Offline

Activity: 714
Merit: 500

Martijn Meijering


View Profile
January 22, 2014, 03:11:14 PM
 #34

I strongly suspect that in November 2008 there was no script. It always felt like a last minute addition to me. It's not mentioned in the white paper at all and everything we know about it was reverse engineered out of the source. And as noted the design is a bit screwy - CHECKSIG feels like something that was refactored out of a pre-existing code base rather than something you'd actually sit down and design on paper.

I think there was, because the fields are already named scriptPubKey and scriptSig. It was probably preceded by an implementation that had no scripts, just public keys and signatures. I wonder if there was an intermediate phase that allowed multiple keys per output, but not yet full scripts. Maybe the concatenation business made sense in such a context.

Also note that SignSignature and VerifySignature aren't in the files here, although that would be the obvious place to put them. I suspect they used to be there in an even earlier version and were moved to script after that was split off. And script may have been too immature for Satoshi to share just yet. Then again, it's interesting to see that it does already include nLockTime and transaction replacement.

I've also wondered if maybe there was an earlier implementation that used balances, not outputs, as that is what I would have started with. The most obvious starting point might be single input, single output, single signature transactions between accounts. But there is no evidence of this, and maybe previous ideas discussed in the literature already chained individual coins.

ROI is not a verb, the term you're looking for is 'to break even'.
mmeijeri
Hero Member
*****
Offline Offline

Activity: 714
Merit: 500

Martijn Meijering


View Profile
January 22, 2014, 03:16:58 PM
 #35

I wonder what a Forth expert would make of Satoshi's choice of opcodes. Did he lift it from somewhere, does it look like the work of an experienced Forth hacker? My only experience with Forth is playing around with PostScript a bit, so I can't tell.

ROI is not a verb, the term you're looking for is 'to break even'.
marcus_of_augustus
Legendary
*
Offline Offline

Activity: 3472
Merit: 1637



View Profile
January 22, 2014, 07:21:52 PM
 #36

I wonder what a Forth expert would make of Satoshi's choice of opcodes. Did he lift it from somewhere, does it look like the work of an experienced Forth hacker? My only experience with Forth is playing around with PostScript a bit, so I can't tell.

... rich vein this one, imo.

jdbtracker
Hero Member
*****
Offline Offline

Activity: 727
Merit: 500


Minimum Effort/Maximum effect


View Profile
January 25, 2014, 08:19:08 PM
 #37

Wow this is messed up, the whole thing is unsigned integers; it's all addition. It's an interesting design choice, not just prevents charge-backs but simplifies a lot of the math, you can remove some of
the steps but at the cost of understandability.

If you think my efforts are worth something; I'll keep on keeping on.
I don't believe in IQ, only in Determination.
scintill
Sr. Member
****
Offline Offline

Activity: 448
Merit: 250


View Profile WWW
February 03, 2014, 03:40:19 AM
 #38

And as noted the design is a bit screwy - CHECKSIG feels like something that was refactored out of a pre-existing code base rather than something you'd actually sit down and design on paper.

Yeah, a more apt name would be OP_DO_BITCOIN or something, since it rolls so much core functionality into one inflexible "opcode."  The rest of Script seems like pointless toys, since not even the most trivial inspections of the transaction or blockchain is possible.  It is cool to see the hash collision bounties that have been published using some of the other Script opcodes.  (I'd be interested to see other novel uses, too. Maybe smarter people have found that Script is not as useless as I think.)

1SCiN5kqkAbxxwesKMsH9GvyWnWP5YK2W | donations
Cryddit
Legendary
*
Offline Offline

Activity: 924
Merit: 1057


View Profile
February 03, 2014, 08:04:12 AM
 #39

I agree with you that script would be drastically more useful if a script could examine the blockchain, look for another tx, etc.

But there are logistic issues. 

It's already the case that spends using outputs from other transactions not yet at least (confirmation depth) in the blockchain are assigned low priority. 

But in a universe where a spend of those outputs caused a script with the ability to examine the blockchain to run, I'd want the script to only be able to examine the blockchain up to (mining output confirmation depth) *prior* to the spend.  Which could be long after the transaction containing the script was made, but could not be very soon before the transaction *spending* that output was made.  In any case it would need to be considerably longer than the current "confirmation" time, and spends should outright fail rather than just have low priority.  This is because a script may reveal information pertinent to the continuing blockchain. If it does so in an orphaned block, then that information is revealed when it ought not have been. We don't want information pertinent to the blockchain that's not getting orphaned revealed based on a view of history that might possibly still get orphaned.  Also, the same restriction is necessary because it should not be possible for a valid spend (where the txin scripts return true) to later become invalid based on additional information getting added to the blockchain.

Finally, it makes checking transactions more expensive, and checking tx would require accessing the blockchain out of sequence.

All these difficulties can be overcome of course, I'm just saying the design criteria are actually pretty finicky.
scintill
Sr. Member
****
Offline Offline

Activity: 448
Merit: 250


View Profile WWW
February 03, 2014, 09:54:18 AM
 #40

Yeah, I figured there are hairy problems about scripts depending on arbitrary other transactions.  Maybe Satoshi gave up on making script really work because he didn't know if he could do it right.  Best to get a solid foundation first.

Just having more information about the transaction itself and a bit of global state could be useful.  E.g., maybe locktime could be implemented in script, if the script could know the time.  A script could check that its inputs are evenly distributed N ways across its outputs, for fair splitting of funds between partners or something.  I guess multisig and other collaborative tx signing allows the key holders to mediate these kinds of things themselves.

I have thought about scripts being able to "call" prior transactions' scripts, to recycle useful but complex behavior, if the reference and some optional "patching" is shorter than duplicating the script itself.  But as you say, this kind of thing would be a nightmare of inefficiency and DoS attack surface even at merely today's blockchain size. Smiley

1SCiN5kqkAbxxwesKMsH9GvyWnWP5YK2W | donations
Pages: « 1 [2] 3 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!